neverallow shell file_type:file link

Change-Id: I77ce4331d70edebcecc753b2e67ffab1de3ae98e

neverallow shell file_type:file link
Change-Id: I77ce4331d70edebcecc753b2e67ffab1de3ae98e
e0c8da25 · Nick Kralevich · e96c3abe · e0c8da25
Commit e0c8da25 authored 10 years ago by Nick Kralevich
Hide whitespace changes
Inline Side-by-side

Showing with 8 additions and 0 deletions

shell.te shell.te +8 -0

No files found.
--- a/shell.te
+++ b/shell.te
@@ -75,3 +75,11 @@ allow shell domain:process getattr;
 # and read other files created by init process under /data/bootchart
 allow shell bootchart_data_file:dir rw_dir_perms;
 allow shell bootchart_data_file:file create_file_perms;
+
+# Do not allow shell to hard link to any files.
+# In particular, if shell hard links to app data
+# files, installd will not be able to guarantee the deletion
+# of the linked to file. Hard links also contribute to security
+# bugs, so we want to ensure the shell user never has this
+# capability.
+neverallow shell file_type:file link;